logo
Published on Security Incite: Analysis on Information Security (http://securityincite.com)

The Daily Incite - January 24, 2007

By Mike Rothman
Created 2007-01-24 10:24
Today's Daily Incite

January 24, 2007 - Volume 2, #14

Good Morning:
HD baby! I got my HD installed yesterday and it's cool. Of course, DirecTV figured out a way to nickel and dime me with the install, but I've been doing business with them long enough to have expected it. Picture is great, but the new DVR platform will take some getting used to, especially for the Boss - who just figured out how the Tivo worked. For me, it's great to live with someone who is not technically inclined. It tries my patience (no, don't hold down the rewind button!), but it keeps me focused on the mass market. You know, those who don't relish in playing around with new gadgets because they can. The mass market are folks that want to use technology to solve a problem. That's it. No bells and whistles to confuse things. I like bells and whistles, but I'm not the mass market.

Bit of a slow news day in security land. It seems the Storm virus/worm remains big news, but that's because nothing else has really happened. I'm with Dancho (here [0]). Nothing seems novel about it, it's just social engineering on steroids. More zombies, more bots, more spam. That's pretty novel. I also want to point to some research that Dave Maynor did on Microsoft's response to a vulnerability relative to Apple's (here [0]). It's interested, but to me more reflective of the maturity of Microsoft's process. Apple, Oracle and the rest of them have a lot of catching up to do. You can say a lot about Microsoft, but they've had enough practice patching things that they are pretty good at it.

Have a great day.

Technorati: Information Security [1], CSO [2]

The Pragmatic CSO [3]
 The Pragmatic CSO is Here!


Read the Intro and Get
"5 Tips to be a Better CSO"


www.pragmaticcso.com [4]

Top Security News

http://www.eweek.com/article2/0,1895,2086103,00.asp [5]
Link to this [5]

http://www.darkreading.com/document.asp?doc_id=115020 [6]
Link to this [6]

http://www.net-security.org/secworld.php?id=4626 [7]
Link to this [7]

http://www.itsecurity.com/features/more-secure-firewall-012207/ [8]
Link to this [8]

Top Blog Postings

here [9], if you are into that sort of thing.
http://ddanchev.blogspot.com/2007/01/social-engineering-and-malware.html
 [10]Link to this [10]

http://infosecplace.com/blog/2007/01/23/cisco-and-cybertrust-team-up-on-pcidss/
 [11]Link to this [11]

http://erratasec.blogspot.com/2007/01/test-of-apples-security-response-versus.html
 [12]Link to this [12]

http://www.theconvergingnetwork.com/2007/01/the_more_things_change_the_mor.html
 [13]Link to this [13]

http://securityincite.com/security-incite-rants/daily-incite [13]

Source URL:
http://securityincite.com/blog/mike-rothman/the-daily-incite-january-24-2007

Links:
[1] http://technorati.com/tag/information%20security
[2] http://technorati.com/tag/CSO
[3] http://www.pragmaticcso.com
[4] http://www.pragmaticcso.com
[5] http://www.eweek.com/article2/0,1895,2086103,00.asp
[6] http://www.darkreading.com/document.asp?doc_id=115020
[7] http://www.net-security.org/secworld.php?id=4626
[8] http://www.itsecurity.com/features/more-secure-firewall-012207/
[9] http://www.symantec.com/enterprise/security_response/weblog/2007/01/storm_trojan_outbreak_a_spamce.html
[10] http://ddanchev.blogspot.com/2007/01/social-engineering-and-malware.html
[11] http://infosecplace.com/blog/2007/01/23/cisco-and-cybertrust-team-up-on-pcidss/
[12] http://erratasec.blogspot.com/2007/01/test-of-apples-security-response-versus.html
[13] http://www.theconvergingnetwork.com/2007/01/the_more_things_change_the_mor.html